Attempts to hack into website ?

[frank]

Checking through my sons Wordpress website Itheme security logs I came across lots of invalid login attempts from early March to today, various time of the day all using the username Admin (not te the proper username), the IP numbers all originate from France , some in Paris some on outskirts according to TraceIP. There are 11 different IP numbers in the range 195.154.xx.xx. All these IP's appear to belong to Online.net.

Correct me if I'm wrong but I suspect a attempt at brute force hacking by the same person, perhaps on different computers. Can any of you IT guys tell me if this is a attempt at hacking and is reporting it to Online.net's abuse dep't is worth the effort?

Meanwhile all suspect IP numbers will be added to the Blocked hosts.

Thanks

 

[Sejanus Aelianus]

It never harms, in my opinion, to send a message to the ISP's security department, giving them the list of addresses. If they take security seriously, they'll look into it and if they don't, you've lost nowt.

 

[Carlh]

can always put some odd characters into the password just to strengthen it too, cant hurt anyway (as long as you remember what you've put)

 

[Mr Bump]

its probably just a bot, just beef up your login and PW.

 

[mused]

I have followed step provided by my hosting provider to secure wordpress and that help , you can try securing your WP following this article : https://www.webhost.uk.net/kb/108/how-to-secure-wordpress-blog

 

[st599]

Probably malware bots or skiddies trying it on. I'd follow the guides online about WordPress security and change passwords.

 

[boyfalldown]

Script kiddies and bots will always probe WP sites. It doesn't make it right but it happens. Beef up security and move one. As long as your son doesn't use admin as his user name (change it if he does) and go into the database to change wp_nicename in the wp_users table to something other then your username should be fine

Also remember to set wp_config permission properly. Owner only, no one else need access and you can assuming you have Wordpress in your home directory move it up a level out of your public directories

 

[medialinx]

Get wordfence for wordpress. I have about a hundred attempts to get in to my site daily. We have all sorts of security software installed to track and prevent it. A good start would be to not use admin as your login.